GHSA-c7x2-7h8r-jq4m, CVE-2018-14519
packagist/getkirby/cms
Cross-Site Request Forgery (CSRF)
An issue was discovered in Kirby 2.5.12. The delete page functionality suffers from a CSRF flaw. A remote attacker can craft a malicious CSRF page and force the user to delete a page.
All versions up to 2.5.12
Unfortunately, there is no solution available yet.
2022-09-19
source |